Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/GfzhUjd7ss9JXbBeIZCV7TMteZA.roa
File: GfzhUjd7ss9JXbBeIZCV7TMteZA.roa (raw, json)
Hash identifier: Z9uU4BkQiE0d5M7bmQiFYPHH4VfWLk5TYlA45baXAqk=
Subject key identifier: 19:FC:E1:52:37:7B:B2:CF:49:5D:B0:5E:21:90:95:ED:33:2D:79:90
Certificate issuer: /CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Certificate serial: 1AB6DAB5
Authority key identifier: 35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/GfzhUjd7ss9JXbBeIZCV7TMteZA.roa
Signing time: Sat 01 Jan 2022 06:03:43 +0000
ROA not before: Sat 01 Jan 2022 06:03:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211327
IP address blocks: 46.31.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448191157 (0x1ab6dab5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Validity
Not Before: Jan 1 06:03:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19fce152377bb2cf495db05e219095ed332d7990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3d:ad:9d:1c:1d:2b:2d:de:eb:19:9a:f4:21:
1d:33:38:b0:6d:b5:bd:2c:48:f2:40:f2:1f:b7:89:
3f:c0:73:54:80:1f:46:4d:64:f3:5f:28:d4:54:13:
62:f4:b1:0d:8d:9d:d8:de:4c:96:0f:20:67:3b:30:
37:9d:10:06:c8:9e:ab:8d:e6:92:54:f8:37:3d:d0:
8c:ed:49:86:c0:73:49:78:a3:a1:03:f8:49:7b:9e:
ae:79:96:75:76:86:2e:b4:0c:b8:80:b1:66:94:4f:
7b:64:d2:67:34:e9:4a:65:d9:13:53:90:56:9a:36:
69:c9:d7:87:3b:ca:67:da:59:a0:bc:9b:bc:fd:26:
b0:90:b9:0e:4e:34:a0:65:8b:0a:cd:05:b8:17:a5:
3e:72:be:d3:ee:d0:82:31:50:4d:ec:be:db:0b:44:
83:43:07:96:92:e6:0b:53:7e:fe:d5:b9:c9:40:65:
2c:0d:c1:29:ad:9f:16:d5:44:00:01:90:43:4d:dc:
7c:1f:6d:06:74:da:a2:63:19:a4:61:7a:20:86:c9:
31:a6:a8:e8:fa:d6:a6:e9:7e:53:87:1a:98:3c:3d:
94:3d:08:7a:34:62:e2:45:d0:90:61:55:9f:fb:22:
bc:c8:e7:c4:6d:c8:c4:6c:8d:9e:76:86:4c:1a:da:
cd:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:FC:E1:52:37:7B:B2:CF:49:5D:B0:5E:21:90:95:ED:33:2D:79:90
X509v3 Authority Key Identifier:
keyid:35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/GfzhUjd7ss9JXbBeIZCV7TMteZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.77.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:bf:29:71:c7:85:c0:46:12:4f:1d:66:42:f5:d3:f4:ff:89:
4d:c5:88:6b:4f:e1:c6:28:fd:46:fc:bd:da:85:f2:82:bc:73:
96:95:26:e2:8e:07:74:59:6d:ea:af:42:8a:27:11:21:48:9f:
d7:6d:bf:c0:19:d1:76:4f:e5:82:7d:12:91:41:24:99:3e:c1:
c2:3d:32:90:b1:51:b1:8f:da:7f:9a:a3:48:bb:0b:82:aa:38:
ac:61:9f:e7:20:fd:75:c8:26:68:63:6a:b2:b6:98:cf:b9:72:
a3:f8:c3:0e:d8:1c:67:ef:04:95:47:e8:f7:4c:d0:56:85:5b:
ca:25:d8:cc:f9:55:62:ce:1e:9e:bb:a2:20:21:18:ac:6a:c8:
d0:d9:f5:37:e5:c4:af:28:ca:eb:9f:45:e6:d0:05:ba:59:2a:
f9:1a:20:5f:0d:28:e8:e4:8d:ee:97:ef:91:0b:08:e0:0b:ca:
64:65:6f:ee:49:af:80:97:fd:75:da:d0:04:37:cf:81:1a:89:
07:46:1b:9e:c0:03:59:41:96:90:84:95:25:5e:95:f4:3a:0e:
31:c9:e7:d9:79:87:fa:26:bd:e2:ca:24:de:c1:de:45:e3:f5:
8d:17:c6:5a:2d:f3:4a:e6:ac:a6:0b:c2:8b:a0:f8:56:6c:5e:
c4:56:99:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:05 2024 by rpki-client on console-fra.rpki-client.org